CVE-2019-11119

Name of the Vulnerable Software and Affected Versions Intel RAID Web Console 3 (RWC3) versions 4.186 and before

Description The issue is related to insufficient session validation in the service API, which may allow an unauthenticated user to potentially enable escalation of privilege via network access. This could be exploited by a remote attacker to gain elevated privileges.

Recommendations For Intel RAID Web Console 3 (RWC3) versions 4.186 and before, consider disabling the service API until a patch is available to prevent potential privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.